Overview

overview

10

Static

static

10

Instagram.apk

android-9-x86

1

Instagram.apk

android-10-x64

1

Instagram.apk

android-11-x64

1

dropbox.html

windows7-x64

1

dropbox.html

windows10-2004-x64

1

facebook_d...e.html

windows7-x64

1

facebook_d...e.html

windows10-2004-x64

1

facebook_d...c.html

windows7-x64

1

facebook_d...c.html

windows10-2004-x64

1

facebook_mobile.html

windows7-x64

1

facebook_mobile.html

windows10-2004-x64

1

facebook_m...y.html

windows7-x64

1

facebook_m...y.html

windows10-2004-x64

1

garena_free_fire.html

windows7-x64

1

garena_free_fire.html

windows10-2004-x64

1

github.html

windows7-x64

1

github.html

windows10-2004-x64

1

instagram.html

windows7-x64

1

instagram.html

windows10-2004-x64

1

jquery.js

windows7-x64

1

jquery.js

windows10-2004-x64

1

linkedin.html

windows7-x64

1

linkedin.html

windows10-2004-x64

1

messenger.html

windows7-x64

1

messenger.html

windows10-2004-x64

1

microsoft.html

windows7-x64

1

microsoft.html

windows10-2004-x64

1

netflix.html

windows7-x64

1

netflix.html

windows10-2004-x64

1

paypal.html

windows7-x64

1

paypal.html

windows10-2004-x64

1

protonmail.html

windows7-x64

1

Analysis

  • max time kernel
    136s
  • max time network
    136s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    30/09/2023, 02:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    instagram.html

  • Size

    11KB

  • MD5

    b14c3a18a600742ad0f56f809bf8e240

  • SHA1

    57043b5449e49184dd6566ad1566176f004d1a3c

  • SHA256

    1a2222182c54fc1627b803657eef8a7f5da98390af508b0035be3a3129204f27

  • SHA512

    d39482dce371cd945ea77d2ad49628bd59130efc8bb9c649db614356f26a0810208d0784cf10e1b69812d313f1b1955fd1e89a2ccb26659ea787ab4f9cb3fb5b

  • SSDEEP

    96:JUzNmNGcQ75tDzcic0JFBk+oTBW+WzRoIRcAKc1W7ZTitcSJMAinRtw/11URqdGF:GzNmNQ5Rr7BtTOZeZqRqdGX3F

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\instagram.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2996
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2996 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2748

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    aa90c4c10ba1a9e926eb4063c65b3b40

    SHA1

    c16f3a7b83837818e89e20e376d664058237cf4b

    SHA256

    c8c2d001a98b3c3db1a0ed77a370f398bf76d2b5be73e9bac614efc34d5e6c4b

    SHA512

    c055bba096c76c544f2a29954921969f28659d0ed1a7e65c06f05bf596d9c48db0ac19188c5e0d799a31c6c3c083e971de1cc6c840766f18398291408f7f5ba8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    8af0b7070f5c99ceef8bdaf9689d7d4e

    SHA1

    99f8aff0f1ab6161039c1e8255af5054ced697e2

    SHA256

    70a06d1a04115911bbe86e7037ce17fec00831f0825576870c91016a48870f69

    SHA512

    97c0f3599a6b2c17ff104aea6f95083cb98d6e5ba926bc7bedaa4476c5b885744a24cce28bbc7200396be7ff036e7efab4f01607f7b16c1aa37d8bfd0689282a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    6a689ec68dd34e7e72bd5f77c14e814b

    SHA1

    5c67afc7cb92bbf0a0821830fbf4fda7fcd53672

    SHA256

    bdd9f2d494cd4bc0d915925fab71066e54dc0a65ae8890ee28a858569c6f4e91

    SHA512

    188f02de780f6088c60bf8a973ea612da4298ebbc39558c26ad9ab7256337e714a3c219febac39964d9d3a9f4bf3cafe1b5ff8ed5e2cac7e564ba783befd701b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    580f0c11adb7f10392dc63ca9378f9a3

    SHA1

    a430b1bd6168783fb9173b563371f88539dbf5fc

    SHA256

    465f4a7bb06c86ffab7be59cbf546104d39b109ed84f71824abb5f5c2325f7d5

    SHA512

    9eecf8e9c73172d8c9862bee61b06e0a0f2ae83da3c58441b7335c3dbf59ff7ba2f6e393bd83bafbd677f57b1657434462003bec8a3c7cc056168db7931b8625

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    6e3f776bd582bd4e377b030c4330a178

    SHA1

    dd58b9810f07878278de2036a17e1aec23587a97

    SHA256

    609a34efb4107d322472266eef4ac69204444a045698b453689b55f80baeed8c

    SHA512

    8c847be13c09d94fa4498d07a2ae1a8e876bede99b9260485f96689a5cd394ce278d6063592c34d751840d3e391487c7caa6252a127bd1f8a86b2555bf2ea72c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    b15600533bf87d4b4a7299ed50ac01d9

    SHA1

    0b4f4da57909cccd02b5645e698af1c28d1a299f

    SHA256

    733222df1ed0521efa3b2364244f2721f20ff97d1b6df2b5d5ce943241ea8581

    SHA512

    2df9b04b0e989f926fd08c2c024dd3016eda07d06aad40bfe329646200e259207353a5d4dc342a95a0f20e60b7af84cd35a62c8a79010c776b84c01cec969465

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    af4b7c4a9857234c169790a633b6d0b1

    SHA1

    d03d7cd0c84cdf9e90bf250e35dba19772db201d

    SHA256

    0272ba7a536684446cd80cf179dc04936c453eb9b5deccce7ebb4abcf6bc29da

    SHA512

    b11dafaa11c1ef4e0df5dac986473399649f8496a187f074695b12945149c65b1d1b309611c7cebdf44743db211b4f9151a2559936f7990127e36013053ca9b8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    f8b92a0049e3019423143ec39ee197cf

    SHA1

    ddf77fec9704cf454b5eaeb08164bcb5a842ff3f

    SHA256

    394d9a35ad2050131a9dd18a7e9418ca39a28e2b85726b9035866b4667112383

    SHA512

    626fb99c08a7abc583d3f379ed018611acb5c0bf02b5544dcdf6b67d6f8d8a77fe9fed597778448379412da4e553a36ee97d2057c0fd6d495f2134b817ffd72f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    7b1b787e294e1ed1289eab997d8e1649

    SHA1

    eab44c984cc0cea718b3f2b57ede4927e2481cae

    SHA256

    9961c6aabb8679e03a023a0952ff511cae491545b08888358e6d623b53576c64

    SHA512

    ea79b2158c557099bf571d70a158df1c7bca551f74992fcae8d1b7b78aa125771f4151ff1a6653e55571b0c5bdaa34bf5fc6048aeaddb4c6dbf9a792f48bdf39

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    3b58a1988112c8173357051defe227a8

    SHA1

    b4f1b2a7bc8342a957fc643881d10daa89c9566f

    SHA256

    7ea01dcf05c04927d9c1072cdbf82a1f2b6de56f18319eb4e90a2e46012085c3

    SHA512

    8efd4e6b349936f7a431eaf31d495e66174e074c9e36602ef49527afe72f009f809b335b971685045c13c93bf012eb105a2fdd61710198771236b38916763ec2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    3b58a1988112c8173357051defe227a8

    SHA1

    b4f1b2a7bc8342a957fc643881d10daa89c9566f

    SHA256

    7ea01dcf05c04927d9c1072cdbf82a1f2b6de56f18319eb4e90a2e46012085c3

    SHA512

    8efd4e6b349936f7a431eaf31d495e66174e074c9e36602ef49527afe72f009f809b335b971685045c13c93bf012eb105a2fdd61710198771236b38916763ec2

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab961B.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar963D.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit